Skip to content

Exclude github.com/gin-gonic/gin vulnerable to CVE-2020-28483

James Fargher requested to merge gin_cve into master

Fixes https://gitlab.com/gitlab-org/gitaly/-/issues/3629

The affected versions are transitive dependencies of gocloud.dev which is used by gitaly-backup to upload backups to object storage. This feature has not been hooked up to backup.rake.

There is no risk of exploitation.

Edited by James Fargher

Merge request reports

Loading